Google Chrome, the most used browser for browsing the Internet on computers and mobile phones, is affected by a very serious problem that endangers hundreds of millions of users worldwide now. We are talking about a security alert for a set of 5 extremely serious vulnerabilities that exist in Google Chrome at the moment, allowing hackers to exploit the software even remotely at any time.
Google Chrome has these 5 vulnerabilities grouped in an alert for something called Magellan 2.0, they were discovered in the SQLite database system used to manage browser data from computers. A feature called the WebSQL API exposes Google Chrome users to remote attacks that hackers can take to remotely control the browser and some of its functions however they want.
Google Chrome: ALERT for a DANGEROUS PROBLEM Announced
Google Chrome can be exploited on the Internet by any website by means of JavaScripts that are found on almost any kind of website, so there are no limits in terms of exploitation. Basically, when a Google Chrome user accesses a website where there is a malicious script, it can run the command to exploit the browser, and the hacker can then issue other commands to control other functions of the browser.
“A new set of SQLite vulnerabilities may allow attackers to remotely run malicious code in Google Chrome. The vulnerabilities, five in total, are called "Magellan 2.0" and were disclosed today by the Tencent Blade security team. A malicious website could use the Magellan 2.0 vulnerabilities to run malicious code against Chrome visitors. However, the Tencent team says that users have no reason to worry as they have already notified Google and the SQLite team about these issues.”
Google Chrome has this exploitable function quite easily because that WebSQL API is natively activated and is used for other functions, so if a hacker wants to do harm, he can do it remotely. Interestingly, this vulnerability was revealed exactly one year and a week ago by the same team that revealed the first version of a somewhat similar one for Google Chrome, this being the security team of Tencent, from China.
Google Chrome has the problem already solved by Google in the beta versions of the browser, and the next main version of the browser will bring the solution for the rest of the users around the world.
